833910 – openswan doesn't recognize the loopback option

RHEL Engineering is moving the tracking of its product development work on RHEL 6 through RHEL 9 to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "RHEL project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs in the statuses "NEW", "ASSIGNED", and "POST" are being migrated throughout September 2023. Bugs of Red Hat partners with an assigned Engineering Partner Manager (EPM) are migrated in late September as per pre-agreed dates. Bugs against components "kernel", "kernel-rt", and "kpatch" are only migrated if still in "NEW" or "ASSIGNED". If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "RHEL project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/RHEL-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.

Bug 833910 - openswan doesn't recognize the loopback option

Summary: openswan doesn't recognize the loopback option

Keywords:
Status:	CLOSED CURRENTRELEASE
Alias:	None
Product:	Red Hat Enterprise Linux 7
Classification:	Red Hat
Component:	openswan
Sub Component:
Version:	7.0
Hardware:	All
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	beta
Target Release:	7.0
Assignee:	Avesh Agarwal
QA Contact:	Aleš Mareček
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	RHEL7CCC 1028369
TreeView+	depends on / blocked

Reported:	2012-06-20 14:11 UTC by Aleš Mareček
Modified:	2014-01-22 21:25 UTC (History)
CC List:	5 users (show)
Fixed In Version:	openswan-2.6.38-10.el7
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Clones:	1028369 (view as bug list)
Environment:
Last Closed:	2013-11-08 10:01:13 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Description Aleš Mareček 2012-06-20 14:11:44 UTC

Description of problem:
It seems that openswan doesn't recognize option "loopback" in RHEL-7.
$ service ipsec start
failed to start openswan IKE daemon - the following error occured:
can not load config '/etc/ipsec.conf': /etc/ipsec.conf:17: syntax error, unexpected STRING [loopback]
$ head -17 /etc/ipsec.conf | tail -1
        loopback=yes


Version-Release number of selected component (if applicable):
openswan-2.6.37-3.el7

How reproducible:
Always

Steps to Reproduce:
1. Run the beaker test: /CoreOS/openswan/Regression/bz711975-incomplete-policy-for-loopback-when-using
NOTE: There is also ipsec.conf included
  
Actual results:
FAIL

Expected results:
PASS (loopback option work in RHEL-6)

Additional info:

Comment 5 Avesh Agarwal 2012-12-10 20:39:36 UTC

This has been fixed in openswan-2.6.38-10.el7.

Comment 6 Aleš Mareček 2013-02-08 10:10:21 UTC

I can confirm the issue has dissappeared with openswan-2.6.38-10.el7 (tested on x86_64 and ppc64).

Comment 7 Ondrej Moriš 2013-05-27 08:53:35 UTC

I will retest this issue on the latest RHEL7.

Comment 10 Eric Paris 2013-11-07 17:15:32 UTC

moving this from openswan to libreswan (as we aren't shipping 'openswan' in rhel7)   Paul, you should be able to attach this bug directly to the errata.

Note You need to log in before you can comment on or make changes to this bug.